Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/k3cLo48e9_e1enqvq4Ewqapbgb0.roa
File: k3cLo48e9_e1enqvq4Ewqapbgb0.roa (raw, json)
Hash identifier: aMzq3n857ly1ZKR+IN28AAjs3Ot6aK9VZmY0He7/fTM=
Subject key identifier: 93:77:0B:A3:8F:1E:F7:F7:B5:7A:7A:AF:AB:81:30:A9:AA:5B:81:BD
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0197371E8A5C581B12E12243D2F6465889E7
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/k3cLo48e9_e1enqvq4Ewqapbgb0.roa
Signing time: Tue 03 Jun 2025 18:47:17 +0000
ROA not before: Tue 03 Jun 2025 18:47:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59841
IP address blocks: 2a14:6ac1::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 01:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:37:1e:8a:5c:58:1b:12:e1:22:43:d2:f6:46:58:89:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Jun 3 18:47:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=93770ba38f1ef7f7b57a7aafab8130a9aa5b81bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ea:da:30:22:88:3a:40:c4:17:84:28:43:b6:
f8:f9:cd:1b:5b:22:02:f2:6d:c3:72:46:21:f7:83:
52:7f:6f:b7:17:5c:03:67:0d:25:55:46:43:1f:84:
38:fe:8d:35:67:ba:28:92:ac:e3:0b:25:4b:5c:34:
ce:d2:8d:bd:90:26:06:ed:f9:f1:20:65:4c:a4:d6:
55:d0:76:be:a0:2e:bc:08:f8:06:ad:7a:9f:4d:84:
b6:50:29:25:62:f6:de:db:cc:1e:67:c7:30:67:d9:
14:4b:c4:3f:46:e7:cd:d1:44:94:6a:45:a6:cf:a6:
17:29:1f:4f:8a:b6:9d:22:1d:7f:f8:6f:8b:11:23:
2d:89:af:75:a8:bd:c3:83:a7:f6:58:54:9e:ec:04:
ba:71:53:fc:8a:41:70:4f:db:11:08:1a:9d:cf:0a:
a9:05:b3:6b:b7:fb:54:de:0a:b9:d9:b7:73:d0:f3:
24:8f:b2:23:df:dc:37:1d:b5:c0:c0:14:80:ef:b4:
ec:ed:2e:ed:a4:ed:b2:e0:9d:3c:15:f0:e6:5b:ab:
51:5f:49:9a:26:1c:7a:cd:f3:f6:1d:51:6c:6c:7d:
b3:2a:dc:e1:d4:71:ad:31:21:ac:df:ea:7d:21:e2:
ba:4e:58:55:d8:c8:34:32:05:42:f5:49:e7:da:ed:
e9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:77:0B:A3:8F:1E:F7:F7:B5:7A:7A:AF:AB:81:30:A9:AA:5B:81:BD
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/k3cLo48e9_e1enqvq4Ewqapbgb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6ac1::/32
Signature Algorithm: sha256WithRSAEncryption
72:93:a3:05:89:25:be:f9:5f:61:af:51:3b:32:f9:72:0d:04:
fa:52:3e:4a:17:fc:4a:09:10:5d:83:91:b8:6c:90:cf:ac:2b:
ae:d0:8c:d7:7d:c5:16:4c:25:68:ab:02:72:f1:ea:e9:06:ea:
e7:54:47:85:e0:90:01:90:af:d8:61:94:c8:73:60:9e:d5:ff:
7d:af:07:54:01:c8:14:ae:69:8c:7b:99:6a:96:1b:03:3e:f8:
c9:f7:02:c5:bc:69:03:29:43:3d:c6:83:24:88:b1:08:d6:85:
76:b0:89:1a:22:19:54:03:63:84:6e:d8:ae:58:5f:df:b7:d1:
83:7b:05:fd:f1:56:01:71:31:a2:52:ed:41:fb:64:c3:9a:d7:
97:39:9b:fd:fc:7d:8c:27:68:f9:79:b8:ec:05:69:16:69:3a:
6a:55:ee:36:67:93:41:8a:25:b3:21:f3:4a:5a:24:6f:c7:72:
e4:06:e9:76:7e:37:f1:83:61:b3:d6:87:af:ac:f0:a9:ac:30:
7a:14:bc:1f:bf:33:db:87:f0:09:96:a9:5f:64:ad:6c:8f:16:
c5:2c:dc:d6:7c:a8:30:6a:19:aa:a3:ef:b5:86:d8:6e:91:68:
86:23:ee:82:cf:5e:40:54:e4:11:16:3a:ef:2c:8a:da:0d:fd:
b4:1d:fe:b4
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZc3HopcWBsS4SJD0vZGWInnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2Yjk4ZjgzY2NiZGE3YzE5ZjAwNDE1MWM5OGI1N2M1OWQy
NjhmNTQwHhcNMjUwNjAzMTg0NzE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Mzc3MGJhMzhmMWVmN2Y3YjU3YTdhYWZhYjgxMzBhOWFhNWI4MWJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+raMCKIOkDEF4QoQ7b4+c0bWyIC
8m3DckYh94NSf2+3F1wDZw0lVUZDH4Q4/o01Z7ookqzjCyVLXDTO0o29kCYG7fnx
IGVMpNZV0Ha+oC68CPgGrXqfTYS2UCklYvbe28weZ8cwZ9kUS8Q/RufN0USUakWm
z6YXKR9PiradIh1/+G+LESMtia91qL3Dg6f2WFSe7AS6cVP8ikFwT9sRCBqdzwqp
BbNrt/tU3gq52bdz0PMkj7Ij39w3HbXAwBSA77Ts7S7tpO2y4J08FfDmW6tRX0ma
Jhx6zfP2HVFsbH2zKtzh1HGtMSGs3+p9IeK6TlhV2Mg0MgVC9Unn2u3p3wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJN3C6OPHvf3tXp6r6uBMKmqW4G9MB8GA1UdIwQY
MBaAFFa5j4PMvafBnwBBUcmLV8WdJo9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2Yt
N2FhN2ZjMzU5NjU1LzEvazNjTG80OGU5X2UxZW5xdnE0RXdxYXBiZ2IwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2YtN2FhN2ZjMzU5NjU1
LzEvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhRqwTAN
BgkqhkiG9w0BAQsFAAOCAQEAcpOjBYklvvlfYa9ROzL5cg0E+lI+Shf8SgkQXYOR
uGyQz6wrrtCM133FFkwlaKsCcvHq6Qbq51RHheCQAZCv2GGUyHNgntX/fa8HVAHI
FK5pjHuZapYbAz74yfcCxbxpAylDPcaDJIixCNaFdrCJGiIZVANjhG7Yrlhf37fR
g3sF/fFWAXExolLtQftkw5rXlzmb/fx9jCdo+Xm47AVpFmk6alXuNmeTQYolsyHz
Slokb8dy5Abpdn438YNhs9aHr6zwqawwehS8H78z24fwCZapX2StbI8WxSzc1nyo
MGoZqqPvtYbYbpFohiPugs9eQFTkERY67yyK2g39tB3+tA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 09:16:37 2025 by rpki-client